Analysis
-
max time kernel
36s -
max time network
38s -
platform
windows7_x64 -
resource
win7-20220812-en -
resource tags
-
submitted
13-02-2023 20:25
General
-
Target
668a12554ef3996caf4e96bf0074848253a6fecd5e6523c7877e314a3242e1a7.exe
-
Size
866KB
-
MD5
d3772757c6244f57659d8d140ac77242
-
SHA1
aded9492c85089e9e189027252ce49f26846beb5
-
SHA256
668a12554ef3996caf4e96bf0074848253a6fecd5e6523c7877e314a3242e1a7
-
SHA512
399196b77aa8febcccaa809721efeb9244a4476c0790f3f2982340e586e3f26bb3695bb2025a04b3a414dcb736ac7a971173b80f59744f291ee8a680ff87a5de
-
SSDEEP
12288:Tyc1mhPP2vmoy5860Kk5y4zOsno/eXuNKDqQJPGxbeObQxWDcGEvVkoXwLDdoIL9:Wc1mhPJoPzOsnwdgqGey9sIkogLDK09
Score
7/10
Malware Config
Signatures
-
UPX packed file 2 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\668a12554ef3996caf4e96bf0074848253a6fecd5e6523c7877e314a3242e1a7.exe"C:\Users\Admin\AppData\Local\Temp\668a12554ef3996caf4e96bf0074848253a6fecd5e6523c7877e314a3242e1a7.exe"1⤵
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1992-54-0x0000000075AD1000-0x0000000075AD3000-memory.dmpFilesize
8KB
-
memory/1992-57-0x0000000000400000-0x00000000005D4000-memory.dmpFilesize
1.8MB
-
memory/1992-56-0x0000000000400000-0x00000000005D4000-memory.dmpFilesize
1.8MB
-
memory/1992-55-0x0000000000400000-0x00000000005D4000-memory.dmpFilesize
1.8MB
-
memory/1992-58-0x0000000000310000-0x000000000031B000-memory.dmpFilesize
44KB
-
memory/1992-59-0x0000000000400000-0x00000000005D4000-memory.dmpFilesize
1.8MB
-
memory/1992-60-0x0000000000310000-0x000000000031B000-memory.dmpFilesize
44KB